Design and Development of IDS for AVB/TSN

In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection Sy...

Full description

Main Author: NASCIMENTO, Rodrigo Antônio Alves do
Other Authors: CAMPELO, Divanilson Rodrigo de Sousa
Format: masterThesis
Language: eng
Published: Universidade Federal de Pernambuco 2020
Subjects:
Online Access: https://repositorio.ufpe.br/handle/123456789/37619
Tags: Add Tag
No Tags, Be the first to tag this record!
id ir-123456789-37619
recordtype dspace
spelling ir-123456789-376192020-08-13T05:15:15Z Design and Development of IDS for AVB/TSN NASCIMENTO, Rodrigo Antônio Alves do CAMPELO, Divanilson Rodrigo de Sousa http://lattes.cnpq.br/3406137556910567 http://lattes.cnpq.br/9838400375894439 Redes de computadores Segurança In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance. CAPES Nos últimos anos, o número de ataques à sistemas automotivos aumentou tremendamente. Em geral, para combater tais ameaças, o uso de um modelo de segurança em camadas permite que uma série de mecanismos de segurança sejam aplicados para proteger os elementos de rede. Entre eles estão os Sistemas de Detecção de Intrusão (IDS), que monitoram sistemas afim de detectar atividades anômalas. Com o advento AVB/TSN (Audio Video Bridging/Time Sensitive Networking) para redes Ethernet automotivas, no-vas superfícies de ataques são esperadas em carros. Estas superfícieis estão relacionadas ao número de novas funcionalidades que permitem a transmissão paralela de dados sensíveis ao tempo e tráfego de melhor-esforço, dados de configurações, reserva de recursos, sincronização de relógios, e conexões entre dispositivos. Este trabalho visa preencher a lacuna deixada por trabalhos anteriores com as devidas contribuições: Apresentação dos vetores de ataques presentes nos protocolos de transporte (IEEE 1722/1733), protocolos de configuração (IEEE 1722.1) e protocolo de sincronização de relógios (IEEE 802.1AS); Discussão dos requisitos de software e hardware para o desenvolvimento de um IDS, incorporando os conceitos sugeridos pelo padrão IEEE 802.1Qci, visando um gateway automotivo como plataforma de integração; Introdução de detalhes adicionais que precisam ser levados em consideração à medida que outros protocolos ainda não finalizados ou pouco usados como o IEEE 802.1CB e o 802.1Qbu são introduzidos nos sistemas. A dissertação também apresenta resultados de um testbed utilizando hardware automotivo e ferramentas de testes serão apresentados de forma a avaliar a viabilidade do sistema IDS. Esta avaliação indica se o IDS, por ser uma camada de processamento adicional em um switch Ethernet automotivo, impacta de forma considerável no desempenho da operação normal deste switch. 2020-08-12T17:22:25Z 2020-08-12T17:22:25Z 2019-05-29 masterThesis NASCIMENTO, Rodrigo Antônio Alves do. Design and Development of IDS for AVB/TSN. 2019. Dissertação (Mestrado em Ciência da Computação) – Universidade Federal de Pernambuco, Recife, 2019. https://repositorio.ufpe.br/handle/123456789/37619 eng embargoedAccess Attribution-NonCommercial-NoDerivs 3.0 Brazil http://creativecommons.org/licenses/by-nc-nd/3.0/br/ application/pdf Universidade Federal de Pernambuco UFPE Brasil Programa de Pos Graduacao em Ciencia da Computacao
institution REPOSITORIO UFPE
collection REPOSITORIO UFPE
language eng
topic Redes de computadores
Segurança
spellingShingle Redes de computadores
Segurança
NASCIMENTO, Rodrigo Antônio Alves do
Design and Development of IDS for AVB/TSN
description In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance.
author2 CAMPELO, Divanilson Rodrigo de Sousa
format masterThesis
author NASCIMENTO, Rodrigo Antônio Alves do
author_sort NASCIMENTO, Rodrigo Antônio Alves do
title Design and Development of IDS for AVB/TSN
title_short Design and Development of IDS for AVB/TSN
title_full Design and Development of IDS for AVB/TSN
title_fullStr Design and Development of IDS for AVB/TSN
title_full_unstemmed Design and Development of IDS for AVB/TSN
title_sort design and development of ids for avb/tsn
publisher Universidade Federal de Pernambuco
publishDate 2020
url https://repositorio.ufpe.br/handle/123456789/37619
_version_ 1680625202819497984
score 13.657419